FreeBSD recommends not using base unbound for an authoritative server
Andrew Berg
aberg010 at my.hennepintech.edu
Wed Mar 18 16:11:49 UTC 2015
On 2015.03.18 10:32, Chris Stankevitz wrote:
> On Tue, Mar 17, 2015 at 4:29 PM, Jungle Boogie <jungleboogie0 at gmail.com> wrote:
>> I use unbound from base _only_ at home for recursive DNS stuff. If I were to
>> make it authoritative for a domain, I'd use ports or packages because they
>> are updated more frequently over what's it base.
>
> Mr. Boogie,
>
> Thank you for your reply. Are you referring to security? Is this the
> is a correct interpretation of what you are saying:
>
> "In general, the FreeBSD base software is untrustworthy because it is
> infrequently updated. Someone who is interested in security should
> avoid the FreeBSD base packages and use ports wherever possible."
FreeBSD base gets security fixes. Using something from ports will get you a
different version that is updated on a different schedule.
That quote sounds like it came from a certain well-known troll blog.
More information about the freebsd-questions
mailing list